Security Advisory

CVE-2024-35298

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-19 05:07:24

Last updated 2024-08-02 03:07:46

Assigner jpcert

State PUBLISHED

Description

Improper authorization in handler for custom URL scheme issue in ZOZOTOWN App for Android versions prior to 7.39.6 allows an attacker to lead a user to access an arbitrary website via another application installed on the users device. As a result, the user may become a victim of a phishing attack.

← Browse all CVEs View on cve.org ↗